Newest 'oauth-2.0' Questions

Q&A for professional and enthusiast programmers

Getting access token with axios

I'm working with the Lyft API, and trying to figure out how to get an access token with axios with a node script. I can manually get an access token by using Postman by filling out the form like this:...

Oauth in JAX-RS Webservice [closed]

I'm developing a Webservice in Java with JAx-RS. Now I'd like to protect this API with OAuth 2. The user should have the possibility to use Facbook / Google+ Log-In. For those who don't have Facebook /...

What is the use of consumer token services in spring boot oauth2?

I used JDBC token store in authorization server.But I don't know about the consumer token services.Any one can explain me?and how to rovoke the access token using consumer token services? ...

Apgigility OAuth2, link between User and Client/AuthorizationCode

I'm struggling with OAuth2 authorization, authentication and user linking. What I've done so far: I've created a client and it's secret. All redirects and so on are working. Grant type password works ...

PowerBI.com Dataset Refresh for Azure Data Lake with OAuth2

Situation: I have a Power BI desktop workbook with a data source connection to Azure Data Lake storage. I can query the storage and get to the datasets without any problem. I've created my visuals and ...

Can we use Web API 2 with token based authentication as a separate project

I have one web API 2 project in my solution, In Which I am using token base authentication. Now have to consume web API from angular js . For that I have a separate project and I am using $http to ...

Error at “The PHP exention OAuth 1.2.3 must be installed”

I using PHP sample SDK for integrate QUICK book payment API. But I am getting error: The PHP exention OAuth 1.2.3 must be installed But I am already installed OAuth.dll in WAMP extension folder ...

Google OAuth2 Flow in Server Side Web Application in Java

I am facing an issue understanding the oauth2 flow. A user(identified by a user_id) initiates the GoogleAccounts connection in the browser.The request is passed to Servlet that sends Redirect String ...

Spring REST Client and Service oauth 2 with wso2 identity server [on hold]

I have two spring web apps 1. Spring boot web application i.e REST client 2. Spring boot REST Service. i.e REST service I want to use oauth 2.0 for securing my REST service with ws02 identity server. ...

Accessing Sharepoint Project web app REST from separate app

I need to connect to our corporate PWA. This is the code I'm using: // var endpointUrl = 'https://<companySite>.sharepoint.com/sites/pwa/_api/web/lists'; var endpointUrl = 'https://<...

Difference between security token service (STS) and oAuth token for REST security?

I am working with REST service and now i need to provide security token for the same. I came to know that STS token and oAuth token is suitable to meet my requirement .I have following queries ...

How do I use Oauth2 from intranet application for digikey search api

I have an application on an intranet server. I am wanting to use the basic search feature from the digikey api service which uses oauth2. The problem is that the request uri needs to be something ...

Authenticating client to backend server with Google Sign-in API? Do we have to use 'sub' parameter?

using Google-Signin for authenticating the user on an iOS App. have our own backend server. On starting the iOS app, the user is asked to login. On successful authentication by Google sign-in, a ...

custom omniauth client- Authentication failure! csrf_detected: OmniAuth::Strategies::OAuth2::CallbackError, csrf_detected | CSRF detected

trying to create a custom omniauth client to interact with api base rails app , the provider app is working perfectly with devise and doorkeeper integrated ApiProvider app on trying to authorize the ...

Keycloak - OpenId Connect Access types

I'd like to authenticate a legacy java (6) application against a node-js one currently secured using keycloak OIDC bearer only (both apps belonging to same realm). I've been told to use keycloak-...

Securing a JAX-RS

I'm working on a RESTful API, that works as backend for a mobile application. The underlying system is based on Jersey and Jetty server, but my question is more generic (for any JaX-RS compliant ...

Api authorisation and authentication using a different provider.

I have read a lot on OAuth2.0, OpenId Connect, SAML etc. but am having difficulty applying them to my use case. Basically, I am building a set of microservices that expose a variety of different APIs....

Laravel 5.3 Passport oauth - Single client multiple access token - Alexa

I'm new to oAuth, but it's something I need to integrate for an Alexa home kit skill. https://developer.amazon.com/public/solutions/alexa/alexa-skills-kit/docs/linking-an-alexa-user-with-a-user-in-...

Why authentication URL is not needed in other Oauth 2.0 grant type than authorization code?

I have good knowledge of all Oauth grant type including use case but i have a question, i have seen many examples of authorization code so if i talk part step of authorization code grant type where ...

OneDrive SDK showing empty White window for OAuth

I am coding against the Microsoft.OneDrive.SDK and I have also included the Microsoft.OneDrive.SDK.Authentication. The issue I am having is that I have a console application which opens just a white ...

Convert cURL Authentication to Powershell Invoke-RestMethod [duplicate]

I'm working on pulling data out of our 3rd party application - DOMO. Their API documentation gives examples in cURL however we've been building our scripts in PowerShell. I've been trying to ...

What redirect uri to use on Cordova with the Deezer Javascript SDK?

I am working on a mobile application, using Cordova. I want to implement the Deezer Javascript SDK. Everything is fine except for one thing: I cannot implement the login method (DZ.login). DZ.login ...

Listen to callback URL using HTTPServer

I have implemented authentication for all the social accounts and they work fine. However, I have to paste the callback URL into console every time I authorize the application with social accounts. I ...

Express Passportjs Google + Custom Authentication

I have an express application where I'm using passportjs for managing authentication. At the moment I only want to support sign in with google in my application. I have implemented this properly and ...

Using Flask-OAuthlib, how do I force Facebook to ask for account on reauthentication?

I'm implementing authentication with OAuth 2 providers by Google and Facebook using Flask-OAuthlib package. For Google, I'm using this: google = oauth.remote_app( "google", consumer_key=...

Get email from Principal using PrincipalExtractor

I have a simple SSO aplication using Google login and I am trying to get the email address of the currently logged user. I have a simple endpoint for this information: @RequestMapping("/user") ...

Linkedin Api Saved Jobs

is there a way to retrieve my linkedin saved jobs from the API without registering for the partnership program? (And if not, can I do it by registering?)

Multiple SSO providers in Spring Boot Auth server

I have read and implemented my own Auth server following this tutorial from Spring. There are multiple SSO providers - Facebook, Github and a custom auth server. In this tutorial, the auth server ...

IBM MobileFirst 8 Invalid client signature

I am using MobileFirst 8 to run my web application. After creating a JAVA authentication adapter and a challenge handler, my application works fine on windows however I am facing the error below on ...

Oauth2.0 on custom domain

After screening the google analytics and api documents. I'm still stuck on an 401 unauthorized problem when I request an new token. Refreshing the token works perfectly for my gmail account. But not ...

What are the ways to access outlook Calendar?

I only found the one with the Outlook REST Api which uses oauth2, but I am using wcf soap and can't use that option.Is there another way to access the calendar(via username/password or something else)?...

Jetty error - Google API oauth2

I'm trying to access Google DCM. When I give permission in browser window to obtain information from my account, Eclipse console shows me out this java.lang.NoSuchMethodError: org.mortbay.util....

How to get the user email on sign in with facebook account [duplicate]

I am trying to use facebook login to my website by using the code below and for some reason user email is empty. if(empty($_REQUEST["code"]) && !isset($_GET['error'])) { $dialog_url = "...

Using a custom grand_type with spring security oauth2. UserDetailsService is never used

I try to use a custom grant_type with spring security. With that i use a custom UserDetailsService for adding authorities in my token. The first part work with basic grand type. @Autowired public ...

Flask endpoint issue - decorator login check

I'm getting an issue BuildError: Could not build url for endpoint 'home'. Did you mean 'Welcome' instead? Welcome is another function in the application (first function defined) def loginRequired(...

Can I use oauth2 without having ui?

Basicly if I know the person's username and password is there a way to pass them without needing for him to enter them? I have a webservice with no UI and want to use the Outlook REST API which uses ...

OAuth 2.0 Password Expiry when Obtaining an Access Token

I am writing an API that uses the OAuth 2.0 password flow to authenticate users. When a request for an access token is denied, there does not seem to be any way for a client to tell whether the ...

.NET Built-in way to handle OAuth OWIN refresh tokens that are scoped to a specific user

I have a WepApi Application with Owin Authentication. I want to add refresh token support that is scoped to clientId and userId. I need to write my own implementation of Create and Receive methods ...

Facing OAuth 1.2.3 dll issue

[![PHP V 5.4.3 Env:- Windows 7 ][1]][1] Hello friends, I am trying to integrate QuickBook API but facing issue with DLL Library of OAuth. Fatal Error : "The PHP Extension OAuth 1.2.3 must be ...

Best Practice Microservice Authorization

Hi I was hoping some clarification on the proper way to handle Micro Service Authorization. I have been trying to research the structure but haven't found a lot of great resources. From my ...

Impersonation using JWT

I am trying to implement JWT authorization based on this article. I also need to let specific users (admins) impersonate other users (clients). I see two possibilities here: make admin requests ...

Box sdk python jwt + How to make successive calls using jwt auth

A website which has a link Box to show the Box files and folders. When clicked on to the link, It authenticated with JWT (authenticate_instance) and then a particular user gets authenticated using JWT ...

Spring MVC OAuth2 Login with Java Annotation (without XML and without Spring Boot)

The Spring (Security) world is new for me. But I have just simple use case - to login with OAuth2. The authentication server is some where far away. I have: serverAuthorizationUrl = far.away.com/...

created a falcon api endpoint now need oauth [on hold]

i have create a falcon python API endpoint now my task is to create " O-AuTH" for the API endpoint i have gone through a lot of URL before coming here 1. http://requests-oauthlib.readthedocs.io/en/...

How to use OAuth 2.0 with a Google Apps Script library, with a static redirect URL?

I can't figure out how to make a shared Google Apps Script library, that uses OAuth 2.0. The problem is that the usercallback redirect URL changes, every time I use the library in a different script. ...

Account linking on Action on Google with API.AI

I have an agent and I want to do account linking with Actions on Google. I am using Google Home Web Simulator to test this. I have the following set up under OAuth linking: Client ID: From Google ...

eJabberd API with OAuth2

I installed eJabberd 16.2 on my machine. I am trying to access the api through Postman. When I use Basic Auth everything is working fine. I managed to get a token through the page: http://localhost:...

Define multiple TokenStore(s) in Spring secuirty OAUTH

I have a Spring Security AuthorizationServerConfigurerAdapter configuration which is supporting password and refresh_token grant types. clients .inMemory() .authorizedGrantTypes("...

Yammer App Authentication

Is there a line of code that bypasses the second app authentication screen where you select Allow or Deny? I would like our users to automatically be connected to the registered app. Thanks!

Refresh Facebook API Graph token

I'm trying to exchange a fb API Graph token with a long-lived one according to the explanation given in this link Here what I do url = "https://graph.facebook.com/oauth/access_token?grant_type=...
Translating... 0%